CVE-2020-25352
CVE-2020-25352 affects rConfig (open-source network configuration management utility). The stored XSS occurs in the /devices.php function when processing the Model field in version 3.9.5, allowing remote attackers to execute arbitrary JavaScript by saving a crafted payload. The issue is resolved ...